How severe is CVE-2025-24471?

CVE-2025-24471 has a CVSS v3 score of 6.5 (MEDIUM).

CVE-2025-24471

Name: fortios
Author: fortinet

6.5MEDIUM

An Improper Certificate Validation vulnerability [CWE-295] in FortiOS version 7.6.1 and below, version 7.4.7 and below may allow an EAP verified remote user to connect from FortiClient via revoked cer

发布于: 6/10/2025更新于: 7/22/2025

描述

An Improper Certificate Validation vulnerability [CWE-295] in FortiOS version 7.6.1 and below, version 7.4.7 and below may allow an EAP verified remote user to connect from FortiClient via revoked certificate.

AI分析AI驱动

受影响产品

fortinetfortisase

25.1.39

fortinetfortios

参考资料

https://fortiguard.fortinet.com/psirt/FG-IR-24-544
Vendor Advisory